By vendor
Mintplexlabs vulnerabilities
Known CVEs affecting Mintplexlabs products, prioritized by severity, with SEC.co remediation and detection guidance.
3 published vulnerabilities
- CVE-2026-48116HIGH 7.5
AnythingLLM versions before 1.13.0 contain a command injection vulnerability in their filesystem search capability. When an authenticated user chats with the filesystem agent, an attacker can craft malicious search patterns that trick the underlying ripgrep tool into executing arbitrary commands on the server. The vulnerability exists because the application doesn't properly isolate user input before passing it to ripgrep, allowing an attacker to inject command-line flags that transform ripgrep into a command executor. Combined with AnythingLLM's file-writing capability, this creates a complete remote code execution path within the container.
- CVE-2026-45403LOW 2.0
AnythingLLM versions before 1.13.0 contain a path traversal vulnerability in the agent filesystem copy tool. When copying files, the application only validates the top-level source and destination directories but fails to validate nested files or reject symbolic links. An attacker with high privileges could create or exploit a symlink nested within an allowed source directory to read files outside the intended filesystem boundaries and copy them to an allowed destination, potentially exposing sensitive data. The vulnerability requires high user privileges, complex conditions, and user interaction to exploit, making practical real-world abuse unlikely despite the core weakness.
- CVE-2026-47713LOW 2.0
AnythingLLM versions before 1.13.0 contain a token persistence flaw that can leak sensitive data when administrators migrate from single-user to multi-user mode. A mobile device token issued in single-user mode may remain valid after the migration, allowing it to bypass user-scoping controls and access workspaces and chat content belonging to other users. The vulnerability requires an attacker to have had a legitimate mobile device token before the migration, then exploit it post-migration in the multi-user environment.